Comments (7)
marcelodiiorio
commented on August 22, 2024
Hi! You have to configure SSO settings accordingly. If you are using user flows, it's in the session behavior settings. In case of custom policies, see my sample use case https://github.com/marcelodiiorio/My-Azure-AD-B2C-use-cases/tree/master/Configuring%20B2C%20as%20JWT%20issuer%20using%20OAUTH-OIDC
from samples.
JasSuri
commented on August 22, 2024
You do not need to do anything. The default SSO already applies without reconfiguring the custom policy. Try this, use the Sign In/Up policy in one browser tab. Then use the Profile Edit journey in another tab in the same browser - make sure to remove prompt=login query parameter if it exists. Youll see the user can directly edit the profile without providing credentials.
from samples.
kstro21
commented on August 22, 2024
@JasSuri the user can directly edit the profile without providing credentials when it is a local account, but when the user registered with a provider(Google or Facebook) it is asking for the provider credentials again.
Is it how it works or can we change that? I mean, not asking for credentials when the user is from a provider.
from samples.
JasSuri
commented on August 22, 2024
@kstro21 This would be because the session management technical profile for the social account logon is different to that of the local account sign in. If you set the same session management technical profile for both, it should give SSO.
from samples.
kstro21
commented on August 22, 2024
@JasSuri that would be a configuration on the provider side or it is something a need to change in my custom policies(the XML files)? An example would be great or just a link pointing the right direction.
Thanks
from samples.
ylulloa
commented on August 22, 2024
@kstro21 / @JasSuri: Same happens to me. The scenario is when I'm using multiple accounts on my browser. Let's say I have my personal google account and my work google account. However, If I open an incognito instance of the browser, I can't replicate it because I end up with only one account there.
How can we tell b2c... this app is using this account on the URL that redirects to b2c user profile?
from samples.
JasSuri
commented on August 22, 2024
The proper way to solve this with the default starter pack would be to send the domain_hint. This way the user gets SSO via their social IdP too.
from samples.
Related Issues (20)
- Send a new code via SMS broken in latest page layout versions HOT 1
- Multiple providers support at signup HOT 1
- Sometimes the Continue button doesn't work
- Recurring prompt to enroll in Multi-Factor Authentication (MFA) using TOTP HOT 11
- Azure B2C identity provider increased the length of their generated authorization codes HOT 1
- Application claim "Identity Provider Access Token" not received HOT 1
- Cannot upload the modified B2CMigrate_Extensions HOT 1
- disable inactive account custom policy not working HOT 1
- Conditional Access Policies allow SignUp HOT 2
- Custom policy `change-sign-in-name`: The page cannot be displayed because an internal server error has occurred. HOT 1
- SelfAssert API return error code 400 when try to sign in after leaving idle overnight
- Policy sign-up-deep-link - Login Navigation HOT 3
- ROPC - Set grant_type, scope and client_id as default
- Azure AD B2C Front-channel logout URL Not Working HOT 1
- Azure B2C Password does not match error bad behaviour
- Whitespace error during policy validation
- All the demo in Sample package not work HOT 3
- Restore-MFA-Phone-Number Sample locks up after email address entry, doesn't send verification email HOT 1
- JWTissuer - Keyset does not exist exception HOT 2
- Token acquisition requires the secret of the client used to login to B2C, rather than the secret of the calling application
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from samples.